$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/312D6572B0C104C0D51834C1B01CB0C593DAE8B4.cer File: 312D6572B0C104C0D51834C1B01CB0C593DAE8B4.cer (raw, json) Hash identifier: Z1zulwSgxniYb1I4+Rg73D+ep6vY+scbaqkuqwgPSNA= Subject key identifier: 31:2D:65:72:B0:C1:04:C0:D5:18:34:C1:B0:1C:B0:C5:93:DA:E8:B4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 254755954FDF69FA84476D44B915683E55956066 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c998195f-14bb-41fd-b6ed-7a967c8e43df/0/312D6572B0C104C0D51834C1B01CB0C593DAE8B4.mft caRepository: rsync://repo-rpki.idnic.net/repo/c998195f-14bb-41fd-b6ed-7a967c8e43df/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 18 Oct 2024 15:02:41 +0000 Certificate not after: Fri 17 Oct 2025 15:07:41 +0000 Subordinate resources: IP: 203.175.100.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:47:55:95:4f:df:69:fa:84:47:6d:44:b9:15:68:3e:55:95:60:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 15:02:41 2024 GMT Not After : Oct 17 15:07:41 2025 GMT Subject: CN=312D6572B0C104C0D51834C1B01CB0C593DAE8B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1b:28:ca:0a:2d:8e:eb:6e:e2:f7:bd:33:dd: 98:ef:3a:53:32:67:65:03:bd:0a:e8:82:1d:3c:08: b4:72:f9:ab:1f:1f:ad:27:db:cb:52:48:8a:ad:bb: 12:76:d1:81:77:ac:07:6f:7f:10:b1:4b:f2:5a:a6: e0:93:64:66:df:27:9b:9e:c3:4d:ec:ff:40:a1:49: 23:cb:af:c2:0d:fc:fc:f1:2c:29:5b:aa:70:35:0f: a6:a4:5f:4f:08:9b:1a:3f:9c:7f:ab:e3:c2:21:d8: 45:9e:78:7b:ba:6d:c5:79:2a:20:2f:df:95:c1:c1: aa:8e:34:53:78:b1:b8:79:32:b4:52:31:05:30:af: 36:13:c6:de:f1:ae:b5:03:e6:e8:69:68:12:5e:c9: c2:90:07:ea:8f:ee:bc:c1:58:71:33:e7:27:fc:e8: 8a:36:19:3c:d2:83:ed:63:ef:26:72:c6:3e:95:7c: 03:75:7a:81:26:69:64:2c:a5:bd:7e:85:e3:16:85: 6b:32:20:c3:39:38:81:62:d7:71:a6:75:3b:28:6c: ba:b2:04:6b:51:af:8a:8a:aa:88:02:14:b0:c1:b5: 78:5d:ce:07:02:50:53:06:27:34:f2:e6:0b:13:26: 24:dd:71:d1:df:18:79:4b:fe:48:a7:27:b8:d3:6e: 5c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 31:2D:65:72:B0:C1:04:C0:D5:18:34:C1:B0:1C:B0:C5:93:DA:E8:B4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c998195f-14bb-41fd-b6ed-7a967c8e43df/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c998195f-14bb-41fd-b6ed-7a967c8e43df/0/312D6572B0C104C0D51834C1B01CB0C593DAE8B4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.100.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:b5:4f:c3:08:60:fd:02:e3:1b:b5:92:f6:e9:50:03:d6:a8: 4d:d9:b5:ea:c8:8e:65:c8:1a:5a:47:87:28:df:73:f1:eb:f9: 46:01:d3:ba:bf:bc:b8:4e:8c:ad:44:ec:58:7e:e0:39:00:72: 95:26:f0:35:c3:c4:ab:2b:ce:df:84:a8:d5:da:cc:9d:eb:53: 5d:16:62:96:83:4d:88:2f:0f:ab:19:00:06:39:1b:3c:58:47: 88:27:19:f2:3f:62:01:61:f9:4a:ad:ee:23:81:35:2d:e7:73: 0c:19:fa:7f:2a:10:ea:54:6f:df:e6:24:dc:3a:31:60:99:c0: 85:2c:3b:7a:ab:c2:26:8c:dd:f9:9d:73:bd:a3:7f:54:9d:af: de:85:34:1c:10:d7:88:38:b4:02:da:68:20:2b:3c:62:44:cb: 2a:45:62:50:d0:3b:1d:37:88:56:46:24:9b:73:cf:8d:a8:92: aa:73:64:29:f0:cf:a7:f6:98:d7:28:a8:dc:39:b3:53:4c:96: 55:ec:6c:9a:f5:b4:20:c3:c9:84:9c:8d:8e:ba:00:34:09:b6: cf:66:7f:4d:f8:39:e7:7b:ef:5b:8d:28:d0:38:8e:7e:67:7a: f3:b8:dc:c5:7e:a6:ee:32:b0:9b:f4:33:f2:a2:33:dd:e1:37: a6:55:2e:66 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJUdVlU/fafqER21EuRVoPlWVYGYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxODE1MDI0MVoX DTI1MTAxNzE1MDc0MVowMzExMC8GA1UEAxMoMzEyRDY1NzJCMEMxMDRDMEQ1MTgz NEMxQjAxQ0IwQzU5M0RBRThCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsbKMoKLY7rbuL3vTPdmO86UzJnZQO9CuiCHTwItHL5qx8frSfby1JIiq27 EnbRgXesB29/ELFL8lqm4JNkZt8nm57DTez/QKFJI8uvwg38/PEsKVuqcDUPpqRf TwibGj+cf6vjwiHYRZ54e7ptxXkqIC/flcHBqo40U3ixuHkytFIxBTCvNhPG3vGu tQPm6GloEl7JwpAH6o/uvMFYcTPnJ/zoijYZPNKD7WPvJnLGPpV8A3V6gSZpZCyl vX6F4xaFazIgwzk4gWLXcaZ1OyhsurIEa1GvioqqiAIUsMG1eF3OBwJQUwYnNPLm CxMmJN1x0d8YeUv+SKcnuNNuXKUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDEtZXKwwQTA1Rg0wbAcsMWT2ui0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jOTk4MTk1Zi0xNGJiLTQxZmQtYjZlZC03YTk2N2M4ZTQzZGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5OTgxOTVm LTE0YmItNDFmZC1iNmVkLTdhOTY3YzhlNDNkZi8wLzMxMkQ2NTcyQjBDMTA0QzBE NTE4MzRDMUIwMUNCMEM1OTNEQUU4QjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHLr2QwDQYJKoZIhvcNAQELBQADggEBAG21T8MIYP0C4xu1kvbpUAPWqE3ZterI jmXIGlpHhyjfc/Hr+UYB07q/vLhOjK1E7Fh+4DkAcpUm8DXDxKsrzt+EqNXazJ3r U10WYpaDTYgvD6sZAAY5GzxYR4gnGfI/YgFh+Uqt7iOBNS3ncwwZ+n8qEOpUb9/m JNw6MWCZwIUsO3qrwiaM3fmdc72jf1Sdr96FNBwQ14g4tALaaCArPGJEyypFYlDQ Ox03iFZGJJtzz42okqpzZCnwz6f2mNcoqNw5s1NMllXsbJr1tCDDyYScjY66ADQJ ts9mf034Oed771uNKNA4jn5nevO43MV+pu4ysJv0M/KiM93hN6ZVLmY= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org